Re: [Pdns-users] pdns error sendto

2011-02-24 Thread Liong Kok Foo
Hi, I have double checked and I did configured the firewall port 53 tcp/udp. Could it possible there are other port that need to be opened.? I am using APF firewall. If anyone is also using that, please share your configuration. If it's not firewall, where else can I look? What other logs?

Re: [Pdns-users] Manually Changing SOA Serial Number

2011-02-24 Thread Elfyn McBratney
On 25 February 2011 06:35, Elfyn McBratney wrote: > WRT MNAME (aka $ORIGIN), that's not supported in PowerDNS as it is in > BIND (at least as far as I know -- I could be wrong!). If you're > migrating existing BIND zones, zone2sql can handle that automatically > with its "--zone" option. Again, I'

Re: [Pdns-users] Manually Changing SOA Serial Number

2011-02-24 Thread Elfyn McBratney
Hi there, On 24 February 2011 21:29, Linda Pagillo wrote: > Actually, I need to know where to go to change the following… > > 1.)    SOA Serial number. > > 2.)    SOA Refresh value > > 3.)    SOA Expire value > > 4.)    SOA MNAME Value > > 5.)    SOA Retry Value > > 6.)    SOA TTL Value All but

Re: [Pdns-users] Manually Changing SOA Serial Number

2011-02-24 Thread PLists
On Feb 24, 2011, at 2:29 PM, Linda Pagillo wrote: > Actually, I need to know where to go to change the following… These are all in the SOA record. See the documentation http://doc.powerdns.com/types.html ___ Pdns-users mailing list Pdns-users@mai

Re: [Pdns-users] Manually Changing SOA Serial Number

2011-02-24 Thread Linda Pagillo
Actually, I need to know where to go to change the following. 1.)SOA Serial number. 2.)SOA Refresh value 3.)SOA Expire value 4.)SOA MNAME Value 5.)SOA Retry Value 6.)SOA TTL Value Thanks again. Linda Pagillo - Owner LPDynamix 931-284-9291 li...@lpdynamix.

Re: [Pdns-users] stuck tcp sessions on recursor

2011-02-24 Thread bert hubert
On Thu, Feb 24, 2011 at 03:06:12PM -0500, Charles Sprickman wrote: > >this definitely sounds like 3.3 material! > > So far so good, nearly 500,000 tcp queries without any lingering sockets. Good! > Totally unrelated, but I see a stat that's not mentioned in the > docs: "no-packet-error 492682".

Re: [Pdns-users] stuck tcp sessions on recursor

2011-02-24 Thread Charles Sprickman
On Thu, 24 Feb 2011, bert hubert wrote: On Thu, Feb 24, 2011 at 01:33:24PM -0500, Charles Sprickman wrote: "Simon Bedford, Brad Dameron and Laurient Papier discovered relatively high TCP/IP loads could cause TCP/IP service to shut down over time. Addressed in commits 1546, 1640, 1652, 1685, 169

Re: [Pdns-users] stuck tcp sessions on recursor

2011-02-24 Thread bert hubert
On Thu, Feb 24, 2011 at 01:33:24PM -0500, Charles Sprickman wrote: > "Simon Bedford, Brad Dameron and Laurient Papier discovered > relatively high TCP/IP loads could cause TCP/IP service to shut down > over time. Addressed in commits 1546, 1640, 1652, 1685, 1698. > Additional information provided b

Re: [Pdns-users] stuck tcp sessions on recursor

2011-02-24 Thread Charles Sprickman
On Thu, 24 Feb 2011, Kenneth Marshall wrote: On Thu, Feb 24, 2011 at 01:20:13PM -0500, Charles Sprickman wrote: Howdy, I'm seeing an issue with tcp queries on powerdns recursor 3.2. We run two instances of pdns recursor on an internal network and it's mainly hit by lots of qmail delivery serv

Re: [Pdns-users] stuck tcp sessions on recursor

2011-02-24 Thread Kenneth Marshall
On Thu, Feb 24, 2011 at 01:20:13PM -0500, Charles Sprickman wrote: > Howdy, > > I'm seeing an issue with tcp queries on powerdns recursor 3.2. We run two > instances of pdns recursor on an internal network and it's mainly hit by > lots of qmail delivery servers. They are doing a ton of lookups,

[Pdns-users] Manually Changing SOA Serial Number

2011-02-24 Thread Linda Pagillo
Hi everyone. I'm new to the lists and I have a few questions. How do you manually change the following things in PowerDNS? 1.)SOA serial number. 2.)SOA Refresh value 3.)SOA Expire value Thanks! Linda Pagillo - Owner LPDynamix 931-284-9291 li...@lpdynamix.com __

[Pdns-users] stuck tcp sessions on recursor

2011-02-24 Thread Charles Sprickman
Howdy, I'm seeing an issue with tcp queries on powerdns recursor 3.2. We run two instances of pdns recursor on an internal network and it's mainly hit by lots of qmail delivery servers. They are doing a ton of lookups, I think we peak around 4000 queries/second. With more people using dnss

Re: [Pdns-users] Multiple IPs per host name / round robin

2011-02-24 Thread PLists
> The recursive resolver is what clients talk to "locally". AKA a > caching resolver, it's not part of your authoritative infrastructure Ah, I see. So there are really two separate parts to the system. Clients talk to the resolvers and resolvers talk to the authoritative servers. So all I ne

Re: [Pdns-users] Format of private keys in PowerDNSSEC (gmysql) doesn't correspond to BIND's

2011-02-24 Thread Jan-Piet Mens
Hello Maik, > The current version of the format is 1.3, but BIND accepts 1 point anything Newer versions of `dnssec-keygen' generate a 1.3 version unless option `-C' is used, in which case a version 1.2 is created: Compatibility mode: generates an old-style key, without any metad

Re: [Pdns-users] Multiple IPs per host name / round robin

2011-02-24 Thread Michael Loftis
The recursive resolver is what clients talk to "locally". AKA a caching resolver, it's not part of your authoritative infrastructure at all. In fact, if you're using your authoritative nameservers as caching resolvers, you should stop. For most people the recursive resolver is provided by their

[Pdns-users] Multiple IPs per host name / round robin

2011-02-24 Thread PLists
Here's your DNS noob question for the day. (I'm not a real sysadmin. I only pretend to be when backed into a corner.) I've been running PowerDNS (with a MySQL backend) successfully and happily for a couple of years now. It's really basic stuff, one A record per host name. Now I'm in a situati

Re: [Pdns-users] Format of private keys in PowerDNSSEC (gmysql) doesn't correspond to BIND's

2011-02-24 Thread Maik Zumstrull
On Thu, Feb 24, 2011 at 16:38, Jan-Piet Mens wrote: > PowerDNSSEC stores private keys in the cryptokey table. The blob > contained there appears to be "Private-key-format: v1.2", however there > is a difference between keys stored by PDNS and those created by BIND's > `dnssec-keygen -C' utility.

[Pdns-users] Format of private keys in PowerDNSSEC (gmysql) doesn't correspond to BIND's

2011-02-24 Thread Jan-Piet Mens
Hello, PowerDNSSEC stores private keys in the cryptokey table. The blob contained there appears to be "Private-key-format: v1.2", however there is a difference between keys stored by PDNS and those created by BIND's `dnssec-keygen -C' utility. I discovered this upon attempting to read the private

Re: [Pdns-users] Challenge with DNS rewrite

2011-02-24 Thread Kenneth Marshall
On Thu, Feb 24, 2011 at 01:10:31PM +0100, Hugo van der Kooij wrote: > > > Hi, > > How feasable is it to create a PowerDNS caching name server > that can rewrite all requests to a specific non-existing top level > domain and strip that top level domain from the request before passing > it on tow

[Pdns-users] Challenge with DNS rewrite

2011-02-24 Thread Hugo van der Kooij
Hi, How feasable is it to create a PowerDNS caching name server that can rewrite all requests to a specific non-existing top level domain and strip that top level domain from the request before passing it on towards the rest of the world? Due to a rather silly choise of the powers that be the